Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
File: lwhyRZO0dTF1shSBLPaJGmRfhMU.mft (raw, json)
Hash identifier: N3clojaT7reoRi711L8ayy7k0yusF+uBsWXRdtrIFj8=
Subject key identifier: 72:D6:16:6A:53:E7:28:E8:A9:1A:98:3B:D6:67:34:39:13:60:4F:A6
Authority key identifier: 97:08:72:45:93:B4:75:31:75:B2:14:81:2C:F6:89:1A:64:5F:84:C5
Certificate issuer: /CN=9708724593b4753175b214812cf6891a645f84c5
Certificate serial: 019A53AD0A14EA60D62497DCE99101C7883C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
Manifest number: 0235
Signing time: Wed 05 Nov 2025 11:00:40 +0000
Manifest this update: Wed 05 Nov 2025 11:00:40 +0000
Manifest next update: Thu 06 Nov 2025 11:00:40 +0000
Files and hashes: 1: lwhyRZO0dTF1shSBLPaJGmRfhMU.crl (hash: H9RVtV9K45jYn1lJipNIrOqsuWxYlg4vMVTL+SjFlac=)
2: tTnQsLwHNO3gLW3S0MP8mMKmk64.roa (hash: DzDj3u7iBFvq9rklayzZVdsYdkT8c0vWssYs/0kky9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 11:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:ad:0a:14:ea:60:d6:24:97:dc:e9:91:01:c7:88:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9708724593b4753175b214812cf6891a645f84c5
Validity
Not Before: Nov 5 11:00:40 2025 GMT
Not After : Nov 6 11:00:40 2025 GMT
Subject: CN=72d6166a53e728e8a91a983bd667343913604fa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:45:ef:1a:af:e3:fc:d8:b5:a7:36:92:75:6f:
3c:30:74:0e:bf:74:f6:0c:04:3c:10:01:0b:71:06:
05:f8:d9:63:a9:47:f4:e1:23:9c:11:5d:07:fd:ac:
e6:f9:05:44:50:81:67:be:f8:c6:48:29:ed:d1:46:
01:2b:d1:8c:04:81:92:2d:ef:20:f4:ae:0b:e5:fb:
2c:d2:1b:f2:59:09:e0:6f:bb:fd:b6:d9:41:06:25:
6b:3a:2e:31:f4:1b:99:1d:bf:9b:75:bc:fd:ba:90:
70:6f:44:3f:b6:3b:c9:4d:cd:0c:89:56:ee:3d:55:
12:28:7f:6e:65:2a:33:71:bf:a9:ce:62:05:1d:cb:
25:89:ea:ca:c0:57:b2:16:d3:ad:28:58:67:31:b4:
2c:81:a7:9e:e1:9d:74:3f:6b:86:e0:a9:b5:a6:04:
9c:82:b9:ad:de:2a:d4:a8:0f:ef:56:d5:db:0b:e0:
70:af:af:8c:b2:61:f1:de:5e:e4:81:c1:6d:e4:ad:
bf:af:1e:05:a5:fd:fa:fe:86:ef:0f:f5:35:7b:17:
0a:60:fe:5d:4a:10:7c:b4:ba:d9:00:ad:22:c8:60:
1e:c7:fb:b7:ba:46:ae:5d:3e:7c:09:90:19:8d:d5:
0f:36:fd:bf:24:cf:aa:ca:87:2b:8e:61:fc:e9:49:
dd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:D6:16:6A:53:E7:28:E8:A9:1A:98:3B:D6:67:34:39:13:60:4F:A6
X509v3 Authority Key Identifier:
keyid:97:08:72:45:93:B4:75:31:75:B2:14:81:2C:F6:89:1A:64:5F:84:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:41:3a:e3:f5:03:44:67:97:4e:90:5d:82:95:b4:72:e7:e1:
bd:09:31:68:47:f2:6e:9b:83:29:b6:e3:91:0a:b5:14:1f:1b:
dc:e9:4d:04:a4:84:bb:79:29:da:91:2c:97:26:09:00:70:67:
bd:d5:d8:7c:3e:fa:82:29:60:94:6e:41:86:54:8c:ef:b0:b0:
6a:9d:5f:f4:51:6f:db:3b:7b:e4:e9:22:e9:6e:ab:cb:19:7f:
fa:d5:ac:60:9e:39:e2:e9:29:a5:5d:37:4d:04:1f:6e:e5:da:
75:4c:19:a8:29:cd:77:bc:3b:0d:cb:3f:3b:df:3a:53:45:28:
f9:dc:1a:87:5a:13:e5:25:6d:17:8f:75:2b:b6:19:dc:18:8c:
c9:1a:a0:a9:f8:c1:4f:9a:d4:c4:17:23:b4:07:a6:34:81:c9:
48:a0:9d:bc:69:0c:e7:8f:d0:e5:65:a5:ba:d8:f4:5f:91:24:
c8:73:bf:69:5f:9f:4e:4f:6f:ed:5b:48:10:37:29:59:45:b0:
fb:a5:3a:91:32:9f:d1:bd:b5:0c:42:ef:9a:66:51:65:78:1c:
ab:0e:a3:5f:14:46:ef:05:1e:25:4a:76:d5:0d:37:9f:9b:dd:
f2:60:0f:5d:0c:da:b9:ef:c2:56:2f:99:3a:0f:bd:35:c1:08:
d9:3a:5c:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpTrQoU6mDWJJfc6ZEBx4g8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3MDg3MjQ1OTNiNDc1MzE3NWIyMTQ4MTJjZjY4OTFhNjQ1
Zjg0YzUwHhcNMjUxMTA1MTEwMDQwWhcNMjUxMTA2MTEwMDQwWjAzMTEwLwYDVQQD
Eyg3MmQ2MTY2YTUzZTcyOGU4YTkxYTk4M2JkNjY3MzQzOTEzNjA0ZmE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyUXvGq/j/Ni1pzaSdW88MHQOv3T2
DAQ8EAELcQYF+NljqUf04SOcEV0H/azm+QVEUIFnvvjGSCnt0UYBK9GMBIGSLe8g
9K4L5fss0hvyWQngb7v9ttlBBiVrOi4x9BuZHb+bdbz9upBwb0Q/tjvJTc0MiVbu
PVUSKH9uZSozcb+pzmIFHcslierKwFeyFtOtKFhnMbQsgaee4Z10P2uG4Km1pgSc
grmt3irUqA/vVtXbC+Bwr6+MsmHx3l7kgcFt5K2/rx4Fpf36/obvD/U1excKYP5d
ShB8tLrZAK0iyGAex/u3ukauXT58CZAZjdUPNv2/JM+qyocrjmH86UndhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHLWFmpT5yjoqRqYO9ZnNDkTYE+mMB8GA1UdIwQY
MBaAFJcIckWTtHUxdbIUgSz2iRpkX4TFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHdoeVJaTzBkVEYxc2hTQkxQYUpHbVJmaE1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9hZThjMzUtZjlkNy00MzdiLTg5OTYt
MzJhNDI3OGU1YmM1LzEvbHdoeVJaTzBkVEYxc2hTQkxQYUpHbVJmaE1VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9hZThjMzUtZjlkNy00MzdiLTg5OTYtMzJhNDI3OGU1YmM1
LzEvbHdoeVJaTzBkVEYxc2hTQkxQYUpHbVJmaE1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArkE64/UD
RGeXTpBdgpW0cufhvQkxaEfybpuDKbbjkQq1FB8b3OlNBKSEu3kp2pEslyYJAHBn
vdXYfD76gilglG5BhlSM77Cwap1f9FFv2zt75Oki6W6ryxl/+tWsYJ454ukppV03
TQQfbuXadUwZqCnNd7w7Dcs/O986U0Uo+dwah1oT5SVtF491K7YZ3BiMyRqgqfjB
T5rUxBcjtAemNIHJSKCdvGkM54/Q5WWlutj0X5EkyHO/aV+fTk9v7VtIEDcpWUWw
+6U6kTKf0b21DELvmmZRZXgcqw6jXxRG7wUeJUp21Q03n5vd8mAPXQzaue/CVi+Z
Og+9NcEI2Tpcjw==
-----END CERTIFICATE-----
Generated at Wed Nov 5 14:31:54 2025 by rpki-client